Apps with minimal utility that provide predictions, assessments, or similar outputs to the user, may not be allowed on Platform. For example, apps that provide (or claim to provide) users with assessments of personality, personal attributes, character traits, behavioral tendencies, or whose core functionality otherwise involves making predictions about who the user is, may not be allowed.

2. Give people control

Obtain consent from people before publishing content on their behalf.

Use publishing permissions to help people share on Facebook, not to send people messages from your app.

Don’t prefill any content in captions, comments, messages or the user message parameter of posts unless (a) it is a single hashtag in a post shared through our Share Dialog (but not via our APIs), (b) it was created by the person using your app, or (c) it was created by a business whose employees use your app to administer the business’s presence on Facebook.

Privacy Policy

a. Provide a publicly available and easily accessible privacy policy that explains what data you are collecting and how you will use that data.

b. Your privacy policy must not modify, supersede, or be inconsistent with Facebook policies. For example, user data obtained from us cannot be transferred to a data broker or sold, even if you disclose this in your privacy policy.

c. Include your privacy policy URL in the App Dashboard.

d. Link to your privacy policy in any app store that allows you to do so.

e. Comply with your privacy policy.

You may use Account Information in accordance with your privacy policy and other Facebook policies. All other data may not be transferred outside your app, except to your service provider (per, Section 3.7) who needs that information to provide services to your app. With the exception of Account Information, you may only maintain user data obtained from us for as long as necessary for your business purpose.

Delete all of a person’s data you have received from us (including friend data) if that person asks you to, unless you are required to keep it by law, regulation, or separate agreement with us. You may keep aggregated data only if no information identifying a specific person could be inferred or created from it.

Obtain consent from people before using their data in any ad.

Obtain adequate consent from people before using any Facebook technology that allows us to collect and process data about them, including for example, our SDKs and browser pixels. When you use such technology, provide an appropriate disclosure:

a. That third parties, including Facebook, may use cookies, web beacons, and other storage technologies to collect or receive information from your websites, apps and elsewhere on the internet and use that information to provide measurement services, target ads and as described in our Data Policy; and

b. How users can opt-out of the collection and use of information for ad targeting and where a user can access a mechanism for exercising such choice.

In jurisdictions that require informed consent for the storing and accessing of cookies or other information on an end user’s device (such as the European Union), ensure, in a verifiable manner, that an end user provides the necessary consent before you use Facebook technologies that enable us to store and access cookies or other information on the end user’s device. For suggestions on implementing consent mechanisms, visit Facebook’s Cookie Consent Guide for Sites and Apps.

Obtain consent from people before you give us information that you independently collected from them.

Provide meaningful customer support for your app, and make it easy for people to contact you.

If people come to your app from the Facebook app on iOS, give them an option to go back to the Facebook app by using the Back to Facebook banner provided in our SDK.

If people come to your app from the Facebook app on Android, don’t prevent them from going back to Facebook when they press the system back button.

3. Protect data

Protect the information you receive from us against unauthorized access, use, or disclosure. For example, don't use data obtained from us to provide tools that are used for surveillance.

Only show data obtained from a user access token on the devices associated with that token.

Only use friend data (including friends list) in the person’s experience in your app.

If you cache data you receive from us, use it to improve your app’s user experience and keep it up to date.

Don’t proxy, request or collect Facebook usernames or passwords.

Keep private your secret key and access tokens. You can share them with an agent acting to operate your app if they sign a confidentiality agreement.

Don't use a service provider in connection with your use of Platform unless you make them sign a contract to: (a) protect any user data you obtained from us (that is at least as protective as our terms and policies), (b) limit their use of that user data solely to using it on your behalf to provide services to your app (and not for their own purposes or any other purposes), and (c) keep it secure and confidential. You must ensure they comply with our terms and policies (and are responsible for their non-compliance).

Keep Facebook user IDs within your control. You can only share them with service providers who help you build or run your app. Ensure that they keep the user IDs secure and confidential and comply with our policies (ex: see, 3.7). If you need an anonymous unique identifier to share with service providers, use our mechanism.

Don't sell, license, or purchase any data obtained from us or our services.

Don't directly or indirectly transfer any data that you receive from us (including anonymous, aggregate, or derived data) to any ad network, data broker or other advertising or monetization-related service. By “indirectly” we mean you aren’t allowed to, for example, transfer data to a third party who then transfers the data to an ad network.

Don't put Facebook data in a search engine or directory, or include web search functionality on Facebook.

If you are acquired by or merge with a third party, you can continue to use our data only within your app.

If you stop using Platform, promptly delete all user data you have received from us (absent explicit consent from people). You can keep Account Information if you have presented your privacy policy within your app.

If you use friend data from Facebook to establish social connections in your app, only do so if each person in that connection has granted you access to that information.

Don't use data obtained from Facebook to make decisions about eligibility, including whether to approve or reject an application or how much interest to charge on a loan.

If you implement or have previously implemented (on your own behalf or on behalf of a third party) any Facebook Tools / Facebook Business Tools (as defined in our standard terms for such Facebook Tools /Facebook Business Tools (“Facebook Business Tools Terms”), currently available at: https://www.facebook.com/customaudiences/app/tos, or any successor terms we may make available, including at: https://www.facebook.com/legal/terms/businesstools, you acknowledge that the Facebook Business Tools Terms apply in connection with your usage of Platform, including for optimization of Platform and/or the related Facebook Company Product.

4. Encourage proper use

Respect the way Facebook looks and functions. Don't offer experiences that change it.

If you’re building an app with a personalized or social experience, enable people to easily share on Facebook content they've created.

Respect the limits we've placed on Facebook functionality.

Only incentivize a person to log into your app, enter a promotion on your app’s Page, check-in at a place, or to use Messenger to communicate with your business. Don’t incentivize other actions.

Encourage people to accurately tag and share content.

If your service integrates a person’s data into a physical product, only create a physical product for that person’s personal and non-commercial use.

Don’t build an app whose primary purpose is to redirect people off of Facebook.

Only use our SDKs to develop and distribute apps or content for use with the Facebook Platform. You may also distribute any object code or sample source code included in the SDKs for inclusion in such apps.

Don’t modify, translate, create derivative works of, or reverse engineer any SDK or its components.

Be honest about your relationship with Facebook when talking to the press or users. Comply with our Developer PR Guidelines and get approval from us before issuing any formal press release or blog post mentioning Facebook.

If you use the Like button on iOS or Android, don’t collect or use any information from it.

Sharing to Stories:

a. Stories must not include any logos, watermarks, calls-to-action, or other promotional content.

b. Additional policies for Stories with Attribution: (1) Stories must not be generic (i.e., only enable people to share unique and personal content). (2) If a person clicks on your Story, ensure you direct them to an experience that enhances the Story and/or enables them to create their own Story.

5. Follow the law

You are responsible for restricting access to your content in accordance with all applicable laws and regulations, including geo-filtering or age-gating access where required.

Don’t provide or promote content that infringes upon the rights of any third party.

Ensure that you own or secure all rights necessary to display, distribute and deliver all content in your app.

Satisfy all licensing, reporting and payout obligations to third parties in connection with your app.

If your app contains content submitted or provided by third parties:

a. In the United States, you must take all steps required to fall within the applicable safe harbors of the Digital Millennium Copyright Act including designating an agent to receive notices of claimed infringement, instituting a repeat infringer termination policy and implementing a notice and takedown process.

b. In other countries, you must comply with local copyright laws and implement an appropriate notice and takedown process for when you receive a notice of claimed infringement.

Don’t knowingly share information with us that you have collected from children under the age of 13.

Web sites or services directed to children under 13: If you use Social Plugins or our JavaScript SDK for Facebook on sites and services that are directed to children under 13, you are responsible for complying with all applicable laws. For example, if your web site or service is directed to children in the United States, or knowingly collects personal information from children in the United States, you must comply with the U.S. Children’s Online Privacy Protection Act. You must also adhere to our usage notes.

Comply with all applicable laws and regulations in the jurisdiction where your app is available. Do not expose Facebook or people who use Facebook to harm or legal liability as determined by us in our sole discretion.

If applicable, comply with the Video Privacy Protection Act (VPPA) and obtain any opt-in consent necessary to share data on Facebook.

You agree to indemnify and hold us harmless from and against all damages, losses, and expenses of any kind (including reasonable legal fees and costs) related to any claim against us related to your service, actions, content or information.

6. Tech Providers

Data Collection and Use: If you are a Tech Provider for an entity, comply with the following:

a. Only use an entity's data on behalf of the entity (i.e., only to provide services to that entity and not for your own business purposes or another entity's purposes).

b. Don’t use an entity's data to build or augment user profiles.

c. Don't use an entity's data to retarget on or off of Facebook, use piggybacking or redirects, or combine an entity's data with data from another entity.

d. Don’t let people other than those acting on an entity’s behalf (ex: its employees) access the entity's data.

e. Delete all of an entity’s data you have received from us if that entity asks you to or if you stop providing services for that entity, unless you are required to keep it by law, regulation, or separate agreement with us.

Features: For all Platform features (ex: APIs) you use as a Tech Provider, comply with the following:

a. Don't use Platform to enable an entity to access user data, unless you have entered into a separate agreement with us.

b. Don’t charge a fee for using the Platform feature (or related Facebook Services). This policy does not prohibit you from charging for any of your other products and services unrelated to use of the Platform feature (or related Facebook Services).

c. Ensure you have the authority to use the Platform feature (or related Facebook Services) on the entity's behalf.

d. Don’t combine multiple entities or their Facebook Pages or Groups in the same account.

7. Things you should know

We can analyze your app, website, content, and data for any purpose, including commercial.

We can monitor or collect data related to your use of SDKs.

We will use information we receive from you or in connection with your Platform integration in accordance with our Data Policy.

You give us all rights necessary to use any API, SDK, or other technology you provide us to enable your app or bot to work, including the right to incorporate information you provide to us into other parts of Facebook, and the right to attribute the source of information using your name or logos.

We may share your contact info with people who want to contact you.

We may use your name, logos, content, and information, including materials you submit for review, screenshots and video captures of your app and your Facebook Page, for distribution, marketing, and promotional purposes, to demonstrate or feature your use of Facebook, worldwide and royalty-free in all formats and media. You also represent that you have the right to grant this permission.

You give us the right to link to or frame your app, and place content, including ads, around your app. If you use our social plugins, feed dialog or share button, you also give us permission to use and allow others to use such links and content on Facebook.

You grant us and our affiliates a non-exclusive, transferable, sublicensable, royalty-free, worldwide license to host, use, distribute, modify, run, copy, publicly perform or display, translate, and create derivative works of, any data, content, and other information made available by you or on your behalf in connection with the Platform feature. This license survives even if you stop using the Platform feature. You are responsible for obtaining the necessary rights from all applicable rights holders to grant this license. Any API made available by you or on your behalf in connection with the Platform feature is deemed part of your App.

We or an independent auditor acting on our behalf may audit your app, systems, and records to ensure your use of Platform and data you receive from us is safe and complies with our Terms, and that you've complied with our requests and requests from people who use Facebook to delete user data obtained through our Platform. If requested, you must provide us with proof that your app complies with our terms.

We can create apps or products that offer features and services similar to your app.

We don’t guarantee that Platform will always be free.

If you exceed 5M MAU, 100M API calls per day, or 50M impressions per day, you may be subject to additional terms.

Facebook and its licensors reserve all right, title and interest, including all intellectual property and other proprietary rights, in and to all SDKs.

Any SDKs you receive from us are provided to you on an "as is" basis, without warranty of any kind.

We can issue a press release describing our relationship with you.

We may prohibit your use of any service provider in connection with your use of Platform.

We may enforce against your app or website if we conclude you have violated our terms or are negatively impacting the Platform, and we may suspend your app or website, with our without advance notice, while we investigate suspected violations of our terms. We may or may not notify you in advance.

Enforcement is both automated and manual, and can include disabling your app, restricting you and your app’s access to platform functionality, requiring that you delete data, terminating our agreements with you or any other action that we deem appropriate.

We communicate with developers through Developer Alerts and email from the fb.com or facebookmail.com domain. Ensure that the email address associated with your Facebook account and the email address registered to the app are current and that you don’t filter out these messages.

We may change these terms at any time without prior notice. Please check them regularly. Your continued use of Platform constitutes acceptance of those changes.

Request only the data and publishing permissions your app needs to provide a good user experience.

Ask for a write permission only at a point when your app needs the permission (ex: don’t prompt a write permission immediately after a user logs in to your app).

You cannot convert user data you receive from us into independent data (ex. by pre-filling data fields with user data you received from us and asking the user to submit or save the data).

If a person declines a permission, you can prompt them again after they indicate an intent to grant you the permission.

Provide a "Log Out" option that functions properly and is easy to find.

You may not request a user's data—through Platform or through your app—unless you use it meaningfully to improve the quality of a user's experience in your app. It must be clear to the user how their data is used to provide that experience.

9. Ads

If you use a third party ad provider to include ads in your app on Facebook, only use a provider from this list.

Don’t include third-party ads (including for other apps) in posts, comments, notifications, requests, invites or messages.

Don’t include or pair Platform Integrations with non-Facebook ads.

If you run a promotion, contest, competition, or sweepstake on Facebook, comply with our Promotions Policies.

10. Games

Games on Facebook.com:

a. Don’t share the same app ID with a desktop web game off of Facebook.com.

b. Don’t use your Facebook.com game or email addresses you’ve obtained from us to promote or link to a desktop web game off of Facebook.

c. Use Facebook Payments as your only payment method for all in-game purchases.

d. Use Facebook Payments offers if you reward people for actions involving third parties.

Desktop web games off Facebook.com:

a. Only use Facebook Login, social plugins, and publishing channels. Don’t use connections such as friends lists.

b. During authentication, only request age, email, and publishing permissions.

Games on mobile:

a. Don’t share the same app ID with a desktop web game off of Facebook.com.

b. Don’t use your mobile game or email addresses you’ve obtained from us to promote or link to a web game off of Facebook.

Instant Games:

a. Don't charge for any items within iOS games (i.e., iOS games must be free to play). For all other games, you may only charge for items in your game if you have entered into a separate agreement with us.

b. If you want to include ads within your game, only use the Games Ads API. Don’t use a third party ad provider or include any other links to content off your game.

17. Messenger Platform

a. Place any user authentication method in a clear and conspicuous location to ensure people consent to initiating message threads.

b. Don’t contact people in Messenger unless you, or the party to whom you are operating as a service provider, have the necessary consent to do so.

c. Messenger Opt-out: respect all requests (either on Messenger or off) by people to block, discontinue, or otherwise opt-out of your using Messenger to communicate with them.

Messenger Plugins:

a. Don't obscure, cover or hide elements of our plugins.

b. Ensure the Checkbox plugin is placed in close proximity to the button (ex: “purchase”, “submit”, “confirm”) that a person must click on prior to you sending a MessengerCheckboxUserConfirmation event (i.e., don’t send the event until after a person clicks on the button or takes an equivalent affirmative action (ex: submit form)).

b. Ensure you have the authority to act as agent for the business to which you're providing a service, and that your use of our Platform is strictly for the benefit of that business.

c. Don't facilitate or encourage any violations of our policies. For example, if you have permission to support businesses that are eligible for Subscriptions, ensure you don't provide Subscriptions to ineligible services (see details below).

Maintain a Facebook Page that provides customer support contact information, including your mailing address and one or more of the following: email address, web address, or telephone number.

Messages and Data:

Acceptable message types:

a. After people interact with your business or Bot: You may message people within 24 hours of a person's interaction with your business or Bot (ex: messaging your Bot or interacting with a Messenger plugin on your website). Except as permitted below, and until the next interaction, you may send one additional message after this 24 hour period in order to follow up on your conversation.

b. Message Templates and Tags: Only approved message templates and tags may be sent outside of the 24 hour period. Don’t use a message template or tag for a purpose other than its intended purpose.

c. Subscription-based messaging:

i. Bots that primarily support the following use cases are eligible for subscription-based messaging, and these messages may be sent at any time provided people opt-in to receiving this content:

News: Bots that inform people about recent or important events or information in categories such as sports, finance, business, real estate, weather, traffic, politics, government, non-profit organizations, religion, celebrities and entertainment.

Personal trackers: Bots that enable people to receive and monitor information about themselves in categories such as fitness, health, wellness, and finance.

Productivity: Bots that enable people to manage their personal
productivity with tasks such as managing calendar events, receiving reminders, and paying bills.

ii. Subscriptions messages may not be used for sending advertising, marketing, solicitations, or promotional content, even if a person opts-in to receiving this content (ex: daily deals, coupons and discount or sale announcements are not permitted).

Data: Don't use any data obtained from us about the people you reach in Messenger, other than the content of message threads, for any purpose other than as reasonably necessary to support the message types you elect to use.

Healthcare: Don't use Messenger to facilitate direct conversations between people and healthcare providers or to send or collect any patient data obtained from healthcare providers.

Disclosures: Ensure that you provide all necessary disclosures to people using Messenger, such as any disclosures needed to indicate the sponsored or advertising nature of content you send.

Offers and Payments:

a. Don't share or ask people to share individual payment card, financial account numbers or other cardholder data within messages.

b. Don't include links to sites off Messenger where payment information is collected, without our prior permission.

a. We may limit or remove your access to Messenger if you receive large amounts of negative feedback or violate our policies, as determined by us in our sole discretion.

18. Account Kit

Don't obscure any elements of the Account Kit user interface, and don't modify any element except where expressly permitted by our technical documentation.

If people log in with email addresses or phone numbers, your use of that data is subject to your privacy policy and any applicable law or regulation.

If you exceed 100K SMSs per month, you may be subject to additional terms.

If a person that logged in with an email address or phone number deletes their account or requests that such account be deleted, ensure that you notify us via the delete API.

If we remove your access to the Account Kit service, you have 30 days to request any account data that people provided through the Account Kit service as well as any data you've stored with us through the Preferences API. We will provide you with this information unless otherwise prohibited by law.

19. Live API

Don’t build apps that enable publishers to simultaneously stream to Facebook and other online streaming services.

Don’t use the API to stream directly from a mobile phone or tablet camera to Facebook.

Ensure any pre-recorded content is clearly distinguishable from live content.

Don't use the API to publish looping videos; static, animated, or looping images; or to live-stream polls associated with unmoving or ambient broadcasts.

If you enable people to publish Live Video to Facebook, remind them of their obligation to not include third party ads in their video content and to clearly distinguish any pre-recorded content from live content.

20. Profile Expression Kit

Don’t include ads or commercial content, such as logos and watermarks, in profile photos or videos.

Don’t include slideshows in profile photos or videos.

Don’t encourage people to upload profile photos or videos that they aren’t depicted in.

Only apps that have a primary purpose of creating and editing photos or videos may use the Profile Expression Kit.

21. Camera Platform

Don't make any changes to your effect after it has been approved. If you want to make any changes to your effect you must submit a new or improved effect for our review.

23. Jobs Platform

Comply with these Platform Policy, with particular attention to the Tech Provider section of these policies.

Ensure that job listings and your use of the Jobs Platform (including your use of data received via a job listing) comply with our Pages, Groups, and Events Policies, with particular attention to the Jobs on Pages section of these policies.

If your App displays job applications obtained from Facebook, ensure you display “Applied on Facebook” in connection with such job applications.

25. Marketplace Platform

Tech Providers: To the extent you are using the Marketplace Platform to enable your customers to access and use Marketplace Platform functionality, you will ensure that your customer agrees to and complies with our Facebook Commerce Product Merchant Agreement.

If you engage in business activity that is covered by industry regulations, including in connection with your use of the Marketplace Platform, you acknowledge and agree that we are not engaged in any such activity and are not responsible for your obligations under such regulations.

You will use commercially reasonable efforts to obtain conversion data requested by us for leads driven from your use of Marketplace Platform (Ex: Whether such leads result in a scheduled appointment or sale, lease or rental), and will provide any such data that you obtain to us on a daily basis. You hereby grant, and agree you have the right to grant, us and our affiliates a perpetual non-exclusive right to use and exploit such data for any purpose, without any right to compensation from us.

Marketplace Lead Data: Don't use or transfer to a third party (except to your merchant providing the listing) any data you access via the Marketplace Platform lead form features or Lead Generation API or Business Manager (or any successor APIs or technology) except to contact the applicable user about the specific listing for which the data was provided. If you transfer the data to your merchant customer for the purpose above, you do so solely at your own risk and must ensure that such merchant complies with these terms and all applicable laws, rules and regulations.

Definitions

“App” means any technical integration we have assigned an app identification number.

"Marketing API" includes all Graph APIs related to advertising, and all Real Time APIs related to advertising, including but not limited to: all Lead Ads Data coming through the Graph API or Real Time Updates.

“User data” means any data, including a person's content or information (whether personally identifiable or anonymous) that you or third parties obtain from or through Facebook.

"SDK" means any object code, source code, or documentation you receive from us that helps you create apps or content for use with the Facebook Platform.

"Tech Provider" means an entity accessing or using any aspect of Platform to enable the entity's customers to access and use Platform functionality and/or user data.

By "Facebook" or "Facebook Services" we mean the features and
services we make available, including through (a) our website at
www.facebook.com and any other Facebook branded or co-branded websites
(including sub-domains, international versions, widgets, and mobile
versions); (b) our Platform; (c) social plugins such as the Like button,
the Share button and other similar offerings; and (d) other media,
brands, products, services, software (such as a toolbar), devices, or
networks now existing or later developed. Facebook reserves the right to
designate, in its sole discretion, that certain of our brands,
products, or services are governed by separate terms and not our SRR.